Explorer.exe vůbec nanajíždí..

[Michal.S]

Ahoj ... Po zapnuti pc mi strašne pomalu najiždí pc .. hlavním problemem je ten , že my nenajiždi plocha.. asi po 8 minutach mi najede.. zatim musim spuštet před správce uloh ... prečetl jsem si už hodně přispěvku jak tenhle problem odstranit , ale žadny stěchto mi nepomhl.. předem děkuji za odpověd...
Logfile of HijackThis v1.99.1
Scan saved at 14:37:33, on 19.8.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\Program Files\AVG\AVG8\avgrsx.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\Ati2evxx.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\system32\Ati2evxx.exe
C:\windows\Explorer.EXE
C:\windows\system32\spoolsv.exe
C:\WINDOWS\system32\acs.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\windows\system32\PnkBstrB.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\windows\system32\svchost.exe
C:\windows\System32\StkCSrv.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\windows\System32\TUProgSt.exe
C:\windows\system32\wscntfy.exe
C:\WINDOWS\sm56hlpr.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\windows\RTHDCPL.EXE
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Atheros\ACU.exe
C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
C:\windows\system32\ctfmon.exe
C:\Program Files\Xfire\xfire.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Asus\LOCALS~1\Temp\Rar$EX00.313\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?o=13928&l=dis
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O1 - Hosts: 216.107.250.194 nprotect.lineage2.com
O1 - Hosts: 81.0.254.162 L2authd.Lineage2.com
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [SMSERIAL] C:\WINDOWS\sm56hlpr.exe
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [ACU] "C:\Program Files\Atheros\ACU.exe" -nogui
O4 - HKLM\..\Run: [Control Center] C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\windows\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\xfire.exe
O8 - Extra context menu item: Download Using &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\WINDOWS\system32\avgrsstx.dll
O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Konfigurační služba Atheros (ACS) - Atheros - C:\WINDOWS\system32\acs.exe
O23 - Service: ASKUpgrade - Unknown owner - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
O23 - Service: ASWLSVC - Unknown owner - C:\WINDOWS\system32\ASWLSVC.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\windows\system32\Ati2evxx.exe
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate1ca109b7e7cc784) (gupdate1ca109b7e7cc784) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe" /svc (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\windows\system32\PnkBstrB.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\windows\System32\StkCSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\windows\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\windows\System32\TUProgSt.exe

[Reklama]

[pitimir]

Ahoj.

Stiahni RSIT. Spust, klik na "Continue". Po dokoneceni by se ti mal otvorit textovy subor. Ten skopiruj sem.
Pokial by sa nieco stalo, najdes ho aj na adrese "C:\rsit\log.txt".

[Michal.S]

Tak tady to je.. Vubec jse vtom neyvznam..

Logfile of random's system information tool 1.06 (written by random/random)
Run by Asus at 2009-08-19 16:04:42
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 6 GB (14%) free of 40 GB
Total RAM: 895 MB (36% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:05:06, on 19.8.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\Program Files\AVG\AVG8\avgrsx.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\Ati2evxx.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\system32\Ati2evxx.exe
C:\windows\Explorer.EXE
C:\windows\system32\spoolsv.exe
C:\WINDOWS\system32\acs.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\windows\system32\svchost.exe
C:\windows\System32\StkCSrv.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\windows\System32\TUProgSt.exe
C:\windows\system32\wscntfy.exe
C:\WINDOWS\sm56hlpr.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\windows\RTHDCPL.EXE
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Atheros\ACU.exe
C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
C:\windows\system32\ctfmon.exe
C:\Program Files\Xfire\xfire.exe
C:\windows\system32\PnkBstrB.exe
C:\Program Files\ICQ6.5\ICQ.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Asus\Plocha\RSIT.exe
C:\Program Files\trend micro\Asus.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?o=13928&l=dis
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O1 - Hosts: 216.107.250.194 nprotect.lineage2.com
O1 - Hosts: 81.0.254.162 L2authd.Lineage2.com
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [SMSERIAL] C:\WINDOWS\sm56hlpr.exe
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [ACU] "C:\Program Files\Atheros\ACU.exe" -nogui
O4 - HKLM\..\Run: [Control Center] C:\Program Files\ASUS\WLAN Card Utilities\Center.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\windows\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\xfire.exe
O8 - Extra context menu item: Download Using &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\WINDOWS\system32\avgrsstx.dll
O23 - Service: Konfigurační služba Atheros (ACS) - Atheros - C:\WINDOWS\system32\acs.exe
O23 - Service: ASKUpgrade - Unknown owner - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
O23 - Service: ASWLSVC - Unknown owner - C:\WINDOWS\system32\ASWLSVC.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\windows\system32\Ati2evxx.exe
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate1ca109b7e7cc784) (gupdate1ca109b7e7cc784) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\windows\system32\PnkBstrB.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\windows\System32\StkCSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\windows\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\windows\System32\TUProgSt.exe

--
End of file - 10028 bytes

======Scheduled tasks folder======

C:\windows\tasks\1-Click Maintenance.job
C:\windows\tasks\Google Software Updater.job
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2009-04-02 333192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-03-16 1088296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2008-09-09 419096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2008-09-09 2050816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-07-30 668656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-25 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-07-25 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2008-09-09 2050816]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2008-12-09 958200]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - C:\Program Files\AskBarDis\bar\bin\askBar.dll [2009-04-02 333192]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SMSERIAL"=C:\WINDOWS\sm56hlpr.exe [2006-03-21 544768]
"HControl"=C:\WINDOWS\ATK0100\HControl.exe [2006-10-14 110592]
"RTHDCPL"=C:\windows\RTHDCPL.EXE [2006-10-30 16269312]
"SkyTel"=C:\windows\SkyTel.EXE [2006-05-16 2879488]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2008-09-09 1177368]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-26 161328]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2008-10-03 2776576]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-05-25 786521]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-25 149280]
"ACU"=C:\Program Files\Atheros\ACU.exe [2007-10-23 376921]
"Control Center"=C:\Program Files\ASUS\WLAN Card Utilities\Center.exe [2006-11-10 1725440]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\windows\system32\ctfmon.exe [2008-04-14 15360]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-07-30 39408]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2009-08-12 288048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-12-29 687560]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
C:\Program Files\PowerISO\PWRISOVM.EXE [2007-01-20 200704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2009-05-26 24264488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\T-Mobile Communication Centre]
C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe [2008-10-07 1495072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Bluetooth Manager.lnk]
C:\PROGRA~1\Toshiba\BLUETO~1\TosBtMng.exe [2007-05-22 2756608]

C:\Documents and Settings\Asus\Nabídka Start\Programy\Po spuštění
Xfire.lnk - C:\Program Files\Xfire\xfire.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\WINDOWS\system32\avgrsstx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\windows\system32\Ati2evxx.dll [2007-01-16 110592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG8\avgemc.exe"="C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\Xfire\xfire.exe"="C:\Program Files\Xfire\xfire.exe:*:Enabled:Xfire"
"C:\Program Files\HLSW\hlsw.exe"="C:\Program Files\HLSW\hlsw.exe:*:Enabled:HLSW Application"
"C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s"
"C:\Program Files\mIRC\mirc.exe"="C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC"
"C:\Program Files\BitSpirit\BitSpirit.exe"="C:\Program Files\BitSpirit\BitSpirit.exe:*:Enabled:The powerful and easy-to-use BitTorrent Client"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2009-08-19 16:04:42 ----D---- C:\rsit
2009-08-19 16:04:42 ----D---- C:\Program Files\trend micro
2009-08-19 13:10:12 ----A---- C:\ASWL2K.ini
2009-08-18 21:33:30 ----A---- C:\windows\system32\uxtuneup.dll
2009-08-18 21:33:28 ----A---- C:\windows\system32\TuneUpDefragService.exe
2009-08-18 21:32:56 ----D---- C:\Program Files\TuneUp Utilities 2009
2009-08-18 20:26:47 ----D---- C:\windows\pss
2009-08-18 20:20:44 ----D---- C:\Program Files\CCleaner
2009-08-17 10:53:11 ----HDC---- C:\windows\$NtUninstallKB968389$
2009-08-13 21:53:54 ----A---- C:\windows\system32\xfcodec.dll
2009-08-13 11:59:00 ----HDC---- C:\windows\$NtUninstallKB960859$
2009-08-13 11:58:53 ----HDC---- C:\windows\$NtUninstallKB971657$
2009-08-13 11:58:47 ----HDC---- C:\windows\$NtUninstallKB971557$
2009-08-13 11:58:41 ----HDC---- C:\windows\$NtUninstallKB956744$
2009-08-13 11:58:33 ----HDC---- C:\windows\$NtUninstallKB973869$
2009-08-13 11:58:26 ----HDC---- C:\windows\$NtUninstallKB973507$
2009-08-13 11:58:19 ----HDC---- C:\windows\$NtUninstallKB973354$
2009-08-13 11:58:02 ----HDC---- C:\windows\$NtUninstallKB973540_WM9$
2009-08-13 11:45:43 ----HDC---- C:\windows\$NtUninstallKB973815$
2009-08-12 17:04:18 ----D---- C:\Program Files\AskBarDis
2009-08-12 17:03:58 ----D---- C:\Program Files\uTorrent
2009-08-12 15:10:03 ----A---- C:\windows\system32\RemSvc.exe
2009-08-12 15:10:03 ----A---- C:\windows\system32\ASWLSVC.exe
2009-08-12 15:10:03 ----A---- C:\windows\system32\ASWL2K.exe
2009-08-12 15:10:01 ----D---- C:\Program Files\ASUS
2009-08-12 14:45:01 ----D---- C:\windows\system32\Atheros_L2
2009-08-12 14:35:44 ----A---- C:\windows\system32\acs.exe
2009-08-12 14:35:26 ----A---- C:\windows\system32\wsimd.dll
2009-08-12 14:35:26 ----A---- C:\windows\system32\wsfwDS.dll
2009-08-12 14:35:26 ----A---- C:\windows\system32\wgapiloc.dll
2009-08-12 14:35:26 ----A---- C:\windows\system32\wgapi.dll
2009-08-12 14:35:26 ----A---- C:\windows\system32\wcapiU.dll
2009-08-12 14:35:26 ----A---- C:\windows\system32\wcapi.dll
2009-08-12 14:35:26 ----A---- C:\windows\system32\dsaNac.dll
2009-08-12 14:35:26 ----A---- C:\windows\system32\dsa.dll
2009-08-12 14:35:26 ----A---- C:\windows\system32\athcfg20U.dll
2009-08-12 14:35:26 ----A---- C:\windows\system32\athcfg20resU.dll
2009-08-12 14:35:26 ----A---- C:\windows\system32\athcfg20res.dll
2009-08-12 14:35:26 ----A---- C:\windows\system32\athcfg20.dll
2009-08-12 14:35:26 ----A---- C:\windows\system32\athcfg11resloc.dll
2009-08-12 14:35:24 ----D---- C:\Program Files\Atheros
2009-08-12 14:33:15 ----D---- C:\temp
2009-08-12 14:32:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Atheros
2009-08-12 11:43:30 ----D---- C:\Program Files\ESET
2009-08-07 09:00:51 ----N---- C:\windows\system32\xpssvcs.dll
2009-08-07 09:00:51 ----N---- C:\windows\system32\xpsshhdr.dll
2009-08-07 09:00:51 ----N---- C:\windows\system32\prntvpt.dll
2009-08-06 23:43:20 ----SHD---- C:\Config.Msi
2009-08-06 10:47:57 ----A---- C:\windows\system32\javaws.exe
2009-08-06 10:47:56 ----A---- C:\windows\system32\javaw.exe
2009-08-06 10:47:56 ----A---- C:\windows\system32\java.exe
2009-08-04 21:44:15 ----D---- C:\Program Files\Common Files\DivX Shared
2009-07-30 00:27:20 ----D---- C:\Documents and Settings\Asus\Data aplikací\Google
2009-07-30 00:23:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\Google Updater
2009-07-28 16:23:06 ----D---- C:\Program Files\ICQ6.5
2009-07-28 12:32:10 ----D---- C:\windows\ie8updates
2009-07-28 12:27:58 ----HDC---- C:\windows\ie8
2009-07-23 10:39:39 ----SHD---- C:\RECYCLER
2009-07-23 10:31:46 ----A---- C:\ComboFix.txt
2009-07-23 10:23:09 ----RASHD---- C:\cmdcons
2009-07-23 10:21:29 ----A---- C:\windows\zip.exe
2009-07-23 10:21:29 ----A---- C:\windows\SWXCACLS.exe
2009-07-23 10:21:29 ----A---- C:\windows\SWSC.exe
2009-07-23 10:21:29 ----A---- C:\windows\SWREG.exe
2009-07-23 10:21:29 ----A---- C:\windows\sed.exe
2009-07-23 10:21:29 ----A---- C:\windows\PEV.exe
2009-07-23 10:21:29 ----A---- C:\windows\NIRCMD.exe
2009-07-23 10:21:29 ----A---- C:\windows\grep.exe
2009-07-23 10:21:24 ----D---- C:\windows\ERDNT
2009-07-23 10:18:07 ----AD---- C:\Qoobox

======List of files/folders modified in the last 1 months======

2009-08-19 16:04:42 ----RD---- C:\Program Files
2009-08-19 15:51:27 ----D---- C:\Program Files\Mozilla Firefox
2009-08-19 14:49:41 ----D---- C:\Documents and Settings\Asus\Data aplikací\Xfire
2009-08-19 14:49:41 ----A---- C:\windows\system32\PnkBstrB.exe
2009-08-19 14:15:10 ----SD---- C:\windows\Tasks
2009-08-19 14:15:01 ----D---- C:\windows\Temp
2009-08-19 14:03:21 ----A---- C:\windows\winamp.ini
2009-08-19 13:56:31 ----D---- C:\Program Files\Xfire
2009-08-19 13:55:49 ----D---- C:\Documents and Settings\Asus\Data aplikací\uTorrent
2009-08-19 13:07:47 ----D---- C:\WINDOWS
2009-08-19 13:06:13 ----D---- C:\windows\system32
2009-08-19 01:42:40 ----A---- C:\windows\SchedLgU.Txt
2009-08-18 23:25:02 ----D---- C:\Documents and Settings\Asus\Data aplikací\HLSW
2009-08-18 21:33:34 ----SHD---- C:\windows\Installer
2009-08-18 21:33:32 ----A---- C:\windows\system32\TUProgSt.exe
2009-08-18 20:24:40 ----SHD---- C:\System Volume Information
2009-08-18 20:24:40 ----D---- C:\windows\system32\Restore
2009-08-18 20:22:58 ----D---- C:\windows\Minidump
2009-08-18 20:22:58 ----D---- C:\windows\Debug
2009-08-18 17:23:37 ----D---- C:\windows\system32\CatRoot2
2009-08-18 16:44:23 ----D---- C:\Documents and Settings\Asus\Data aplikací\Skype
2009-08-18 16:44:13 ----D---- C:\Documents and Settings\Asus\Data aplikací\skypePM
2009-08-18 16:44:09 ----HD---- C:\windows\inf
2009-08-18 16:37:12 ----D---- C:\windows\Prefetch
2009-08-17 22:17:33 ----D---- C:\Documents and Settings\Asus\Data aplikací\teamspeak2
2009-08-17 10:53:15 ----RSHDC---- C:\windows\system32\dllcache
2009-08-17 10:53:13 ----D---- C:\windows\system32\drivers
2009-08-16 20:11:47 ----D---- C:\Documents and Settings\Asus\Data aplikací\ICQ
2009-08-15 15:06:24 ----D---- C:\Program Files\GamePark
2009-08-14 21:53:33 ----A---- C:\windows\NeroDigital.ini
2009-08-14 17:54:26 ----A---- C:\windows\system32\PerfStringBackup.INI
2009-08-13 14:26:18 ----D---- C:\Program Files\mIRC
2009-08-13 12:03:24 ----D---- C:\Program Files\PokerStars
2009-08-13 11:58:40 ----HD---- C:\windows\$hf_mig$
2009-08-13 11:58:22 ----D---- C:\Program Files\Outlook Express
2009-08-12 14:47:56 ----D---- C:\Program Files\SweetIM
2009-08-12 14:45:01 ----HD---- C:\Program Files\InstallShield Installation Information
2009-08-12 14:36:24 ----D---- C:\windows\system32\CatRoot
2009-08-07 18:39:57 ----D---- C:\windows\Microsoft.NET
2009-08-07 18:39:54 ----RSD---- C:\windows\assembly
2009-08-07 09:07:58 ----D---- C:\windows\WinSxS
2009-08-07 09:03:44 ----D---- C:\windows\pchealth
2009-08-07 09:03:31 ----D---- C:\windows\system32\mui
2009-08-07 09:03:31 ----D---- C:\Program Files\Internet Explorer
2009-08-07 09:01:16 ----D---- C:\windows\system32\spool
2009-08-06 10:47:23 ----D---- C:\Program Files\Java
2009-08-05 11:01:14 ----A---- C:\windows\system32\mswebdvd.dll
2009-08-04 21:46:18 ----D---- C:\Program Files\Google
2009-08-04 21:45:29 ----D---- C:\Program Files\DivX
2009-08-04 21:44:15 ----D---- C:\Program Files\Common Files
2009-08-01 16:49:40 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2009-08-01 14:52:31 ----D---- C:\Fraps
2009-07-30 02:49:14 ----A---- C:\windows\system32\MRT.exe
2009-07-28 19:10:16 ----D---- C:\Program Files\Common Files\Adobe
2009-07-28 18:43:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2009-07-28 18:36:39 ----D---- C:\Program Files\Adobe
2009-07-28 16:31:38 ----D---- C:\windows\system32\cs-cz
2009-07-28 16:31:38 ----D---- C:\windows\Media
2009-07-28 16:31:38 ----D---- C:\Program Files\ICQ6Toolbar
2009-07-28 16:31:37 ----D---- C:\windows\Help
2009-07-25 05:23:00 ----A---- C:\windows\system32\deploytk.dll
2009-07-23 10:29:10 ----A---- C:\windows\system.ini
2009-07-23 10:26:42 ----D---- C:\windows\AppPatch

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AvgLdx86;AVG AVI Loader Driver x86; C:\windows\System32\Drivers\avgldx86.sys [2008-09-09 96520]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86; C:\windows\System32\Drivers\avgmfx86.sys [2008-09-09 26184]
R1 intelppm;Řadič procesoru Intel; C:\windows\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 SCDEmu;SCDEmu; C:\windows\system32\drivers\SCDEmu.sys [2007-01-20 31644]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 Tosrfcom;Bluetooth RFCOMM; C:\windows\System32\Drivers\tosrfcom.sys [2007-05-24 64000]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.3.0; C:\windows\system32\DRIVERS\AegisP.sys [2009-08-12 20747]
R2 AvgTdiX;AVG8 Network Redirector; C:\windows\System32\Drivers\avgtdix.sys [2008-09-09 75272]
R2 Ethpdrv;Ethernet Packet Driver; C:\windows\system32\DRIVERS\ethpdrv.sys [2005-09-08 9728]
R3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\system32\ASNDIS5.SYS []
R3 AtcL002;NDIS Miniport Driver for Atheros L2 Fast Ethernet Controller; C:\windows\system32\DRIVERS\l251x86.sys [2007-08-21 30208]
R3 ati2mtag;ati2mtag; C:\windows\system32\DRIVERS\ati2mtag.sys [2007-01-16 1957376]
R3 BCM43XX;Ovladač síťového adaptéru ASUS 802.11; C:\windows\system32\DRIVERS\bcmwl5.sys [2006-10-12 604928]
R3 CmBatt;Microsoft AC Adapter Driver; C:\windows\system32\DRIVERS\CmBatt.sys [2008-04-14 13952]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\windows\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\windows\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RtkHDAud.sys [2006-11-03 4394496]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\windows\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 mouhid;Ovladač myši standardu HID; C:\windows\system32\DRIVERS\mouhid.sys [2004-08-18 12160]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\windows\system32\DRIVERS\ATKACPI.sys [2005-02-17 5632]
R3 PnkBstrK;PnkBstrK; \??\C:\windows\system32\drivers\PnkBstrK.sys []
R3 RTSTOR;USB Mass Stroage Device; C:\windows\system32\drivers\RTSTOR.SYS [2006-06-10 27520]
R3 smserial;smserial; C:\windows\system32\DRIVERS\smserial.sys [2006-03-21 889472]
R3 StkCMini;Syntek AVStream USB2.0 1.3M WebCam; C:\windows\System32\Drivers\StkCMini.sys [2007-06-06 1260672]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2006-05-25 193088]
R3 tosporte;Bluetooth COM Port; C:\windows\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\windows\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\windows\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\windows\system32\DRIVERS\usbohci.sys [2008-04-14 17152]
R3 WSIMD;wsimd Service; C:\windows\system32\DRIVERS\wsimd.sys [2007-07-03 57344]
S3 aj80onoh;aj80onoh; C:\windows\system32\drivers\aj80onoh.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\Asus\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\windows\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 IpwP;IPWireless 3G Network Adapter; C:\windows\system32\DRIVERS\ipw3gnet.sys [2007-06-12 51040]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\windows\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\windows\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\windows\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 npkcrypt;npkcrypt; \??\D:\Lineage ][ Gracia\system\npkcrypt.sys []
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\windows\System32\Drivers\RootMdm.sys [2004-08-18 5888]
S3 SLIP;BDA Slip De-Framer; C:\windows\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\windows\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 tosrfbd;Bluetooth RFBUS; C:\windows\system32\DRIVERS\tosrfbd.sys [2007-04-24 113920]
S3 tosrfbnp;Bluetooth RFBNEP; C:\windows\System32\Drivers\tosrfbnp.sys [2006-11-20 36480]
S3 Tosrfhid;Bluetooth RFHID; C:\windows\system32\DRIVERS\Tosrfhid.sys [2007-03-01 73728]
S3 tosrfnds;Bluetooth Personal Area Network; C:\windows\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio; C:\windows\system32\drivers\tosrfsnd.sys [2007-01-22 53376]
S3 tosrfusb;Bluetooth USB Controller; C:\windows\system32\DRIVERS\tosrfusb.sys [2007-06-11 41856]
S3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\windows\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WpdUsb;WpdUsb; C:\windows\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\windows\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\windows\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\windows\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACS;Konfigurační služba Atheros; C:\WINDOWS\system32\acs.exe [2007-10-23 364629]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\windows\system32\Ati2evxx.exe [2007-01-16 438272]
R2 avg8wd;AVG8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2008-09-09 282904]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2008-10-19 222456]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-07-25 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [2002-12-17 7520337]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-03-03 75064]
R2 PnkBstrB;PnkBstrB; C:\windows\system32\PnkBstrB.exe [2009-08-19 189768]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2008-10-03 965632]
R2 StkSSrv;Syntek AVStream USB2.0 WebCam Service; C:\windows\System32\StkCSrv.exe [2007-04-19 24576]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-25 125048]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; C:\windows\System32\TUProgSt.exe [2009-08-18 603904]
R2 UxTuneUp;TuneUp Theme Extension; C:\windows\System32\svchost.exe [2008-04-14 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\windows\system32\svchost.exe [2008-04-14 14336]
S2 ASKUpgrade;ASKUpgrade; C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe [2009-04-02 234888]
S2 ASWLSVC;ASWLSVC; C:\WINDOWS\system32\ASWLSVC.exe [2004-05-06 496640]
S2 avg8emc;AVG8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2008-09-09 902424]
S2 gupdate1ca109b7e7cc784;Služba Google Update (gupdate1ca109b7e7cc784); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-30 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-07-30 190448]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-12-16 654848]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-03-26 779824]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-26 267824]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [2002-12-17 311872]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\windows\System32\TuneUpDefragService.exe [2009-08-18 360192]
S3 usprserv;User Privilege Service; C:\windows\System32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]

-----------------EOF-----------------

[pitimir]

No takto: mas tam zvysky po ComboFixe (asi chybne, resp. zoadne odinstalovanie). Takze pouzi T-Cleaner (ak by ho antivirus hlasil ako smejda, nic sa netreba bat, ide len o paranoju AV programu) a potom:

Stiahni ComboFix, najlepsie na plochu. Vypni vsetky otvorene aplikacie, ako aj rezidenty antiviru, antispywaru a firewall. Spust program cez ucet s administratorskymi pravami a postupuj podla instrukcii. Cely sken bude trvat cca 10 minut. Pocas neho moze byt PC restartovane. Log, ktory ComboFix vytvori, najdes na adrese "C:\ComboFix.txt".
Ten vloz sem.

Pozor: Kym ComboFix nevytvori log, na nic neklikat, nic nestlacat !!

[Michal.S]

Přesně jak jse my popsal jsem udělal.. T-clearner my nejde psusti tak jsem udelal ten Combofix.. ten už sjem předtim použival nebo jsem chytil vir tady to je..

ComboFix 09-08-18.04 - Asus 19.08.2009 19:30.2.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.895.349 [GMT 2:00]
Spuštěný z: c:\documents and settings\Asus\Plocha\ComboFix.exe
AV: AVG *On-access scanning enabled* (Outdated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Asus\Plocha\Cant_Slow_Down__Morphine__feat__Terri_B__John_Dahlback_Mix
c:\documents and settings\Asus\Plocha\Cant_Slow_Down__Morphine__feat__Terri_B__John_Dahlback_Mix
c:\windows\Installer\1a36418.msi
c:\windows\Installer\1a36419.msp
c:\windows\Installer\1a3641a.msp
c:\windows\Installer\1a3641b.msp
c:\windows\Installer\1a3641c.msp
c:\windows\Installer\1a3641d.msp
c:\windows\Installer\1a3641e.msp
c:\windows\Installer\1a3641f.msp
c:\windows\Installer\1a36420.msp
c:\windows\Installer\1a36421.msp
c:\windows\Installer\8c202.msp
c:\windows\Installer\8c203.msp
c:\windows\Installer\8c204.msp
c:\windows\Installer\8c205.msp
c:\windows\Installer\8c206.msp
c:\windows\Installer\8c207.msp
c:\windows\Installer\8c208.msp
c:\windows\Installer\8c209.msp
c:\windows\Installer\8c20a.msp
c:\windows\Installer\8c20b.msp

Nakažená kopie c:\windows\system32\mspmsnsv.dll byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\system32\dllcache\mspmsnsv.dll

.
((((((((((((((((((((((((( Soubory vytvořené od 2009-07-19 do 2009-08-19 )))))))))))))))))))))))))))))))
.

2009-08-19 14:04 . 2009-08-19 14:05 -------- d-----w- C:\rsit
2009-08-19 14:04 . 2009-08-19 14:05 -------- d-----w- c:\program files\trend micro
2009-08-18 19:33 . 2008-12-11 11:31 27904 ----a-w- c:\windows\system32\uxtuneup.dll
2009-08-18 19:33 . 2009-08-18 19:33 360192 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2009-08-18 19:32 . 2009-08-19 11:06 -------- d-----w- c:\program files\TuneUp Utilities 2009
2009-08-18 18:20 . 2009-08-18 18:20 -------- d-----w- c:\program files\CCleaner
2009-08-13 19:53 . 2009-08-13 19:53 41872 ----a-w- c:\windows\system32\xfcodec.dll
2009-08-12 15:04 . 2009-08-12 15:04 -------- d-----w- c:\program files\AskBarDis
2009-08-12 15:03 . 2009-08-12 15:03 -------- d-----w- c:\program files\uTorrent
2009-08-12 13:10 . 2009-08-12 13:10 20747 ----a-w- c:\windows\system32\drivers\AegisP.sys
2009-08-12 13:10 . 2006-07-25 19:20 537600 ----a-w- c:\windows\system32\ASWL2K.exe
2009-08-12 13:10 . 2004-05-07 16:57 159827 ----a-w- c:\windows\system32\RemSvc.exe
2009-08-12 13:10 . 2004-05-06 10:21 496640 ----a-w- c:\windows\system32\ASWLSVC.exe
2009-08-12 13:10 . 2009-08-12 13:10 -------- d-----w- c:\program files\ASUS
2009-08-12 12:45 . 2009-08-12 12:45 -------- d-----w- c:\windows\system32\Atheros_L2
2009-08-12 12:33 . 2007-10-26 00:20 549184 ----a-w- c:\windows\system32\ar5211.sys
2009-08-12 12:33 . 2009-08-14 17:48 -------- d-----w- C:\temp
2009-08-12 09:43 . 2009-08-12 09:43 -------- d-----w- c:\program files\ESET
2009-08-08 09:46 . 2009-08-08 09:46 -------- d-sh--w- c:\documents and settings\Asus\PrivacIE
2009-08-07 07:00 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2009-08-07 07:00 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2009-08-07 07:00 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2009-08-07 07:00 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2009-08-07 07:00 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2009-08-07 07:00 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2009-08-07 07:00 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2009-08-04 19:44 . 2009-08-04 19:44 -------- d-----w- c:\program files\Common Files\DivX Shared
2009-07-29 09:39 . 2009-07-03 16:59 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2009-07-29 09:39 . 2009-07-03 16:59 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2009-07-28 16:50 . 2009-07-28 16:50 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2009-07-28 14:33 . 2009-07-28 14:33 -------- d-sh--w- c:\documents and settings\Asus\IETldCache
2009-07-28 14:23 . 2009-07-28 14:26 -------- d-----w- c:\program files\ICQ6.5
2009-07-28 10:32 . 2009-07-28 10:32 -------- d-----w- c:\windows\ie8updates
2009-07-28 10:31 . 2009-07-01 07:08 101376 -c----w- c:\windows\system32\dllcache\iecompat.dll
2009-07-28 10:27 . 2009-07-28 10:31 -------- dc-h--w- c:\windows\ie8

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-08-19 15:38 . 2008-10-10 13:40 137928 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2009-08-19 15:38 . 2008-10-10 13:40 189768 ----a-w- c:\windows\system32\PnkBstrB.exe
2009-08-19 11:56 . 2008-09-10 17:36 -------- d-----w- c:\program files\Xfire
2009-08-18 19:33 . 2009-01-16 17:24 603904 ----a-w- c:\windows\system32\TUProgSt.exe
2009-08-15 13:06 . 2008-10-10 14:17 -------- d-----w- c:\program files\GamePark
2009-08-14 15:54 . 2004-08-18 12:00 79344 ----a-w- c:\windows\system32\perfc005.dat
2009-08-14 15:54 . 2004-08-18 12:00 415928 ----a-w- c:\windows\system32\perfh005.dat
2009-08-13 12:26 . 2008-12-01 15:39 -------- d-----w- c:\program files\mIRC
2009-08-13 10:03 . 2009-01-11 20:41 -------- d-----w- c:\program files\PokerStars
2009-08-12 12:47 . 2008-11-14 21:29 -------- d-----w- c:\program files\SweetIM
2009-08-12 12:45 . 2008-09-09 12:52 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-08-12 12:35 . 2009-08-12 12:35 -------- d-----w- c:\program files\Atheros
2009-08-06 08:47 . 2009-01-23 14:01 -------- d-----w- c:\program files\Java
2009-08-05 09:01 . 2008-04-14 15:51 205312 ----a-w- c:\windows\system32\mswebdvd.dll
2009-08-04 19:46 . 2009-04-23 17:03 -------- d-----w- c:\program files\Google
2009-08-04 19:45 . 2008-10-26 12:00 -------- d-----w- c:\program files\DivX
2009-07-28 17:10 . 2008-09-22 17:45 -------- d-----w- c:\program files\Common Files\Adobe
2009-07-28 14:31 . 2008-12-01 07:55 -------- d-----w- c:\program files\ICQ6Toolbar
2009-07-25 03:23 . 2009-01-23 14:02 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-07-19 12:26 . 2008-09-10 17:44 -------- d-----w- c:\program files\Teamspeak2_RC2
2009-07-17 19:04 . 2008-04-14 15:51 58880 ----a-w- c:\windows\system32\atl.dll
2009-07-15 11:34 . 2009-07-15 11:34 -------- d-----w- c:\program files\Common Files\INCA Shared
2009-07-13 21:43 . 2008-04-14 15:52 286208 ----a-w- c:\windows\system32\wmpdxm.dll
2009-07-04 18:35 . 2009-07-04 18:35 -------- d-----w- c:\program files\kos
2009-07-03 16:59 . 2008-04-14 15:52 915456 ----a-w- c:\windows\system32\wininet.dll
2009-07-01 22:38 . 2009-03-24 20:15 -------- d-----w- c:\program files\PKR
2009-06-27 14:31 . 2009-06-27 14:30 -------- d-----w- c:\program files\Lauyan
2009-06-25 17:16 . 2008-10-10 12:44 -------- d-s---w- c:\program files\HLSW
2009-06-25 08:27 . 2008-04-14 15:52 54272 ----a-w- c:\windows\system32\wdigest.dll
2009-06-25 08:27 . 2008-04-14 15:51 56832 ----a-w- c:\windows\system32\secur32.dll
2009-06-25 08:27 . 2008-04-14 15:51 147456 ----a-w- c:\windows\system32\schannel.dll
2009-06-25 08:27 . 2008-04-14 15:51 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-06-25 08:27 . 2008-04-14 15:51 729088 ----a-w- c:\windows\system32\lsasrv.dll
2009-06-25 08:27 . 2008-04-14 15:51 301568 ----a-w- c:\windows\system32\kerberos.dll
2009-06-24 11:18 . 2008-04-14 07:01 92928 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2009-06-16 14:40 . 2008-04-14 15:52 119808 ----a-w- c:\windows\system32\t2embed.dll
2009-06-16 14:40 . 2008-04-14 15:51 81920 ----a-w- c:\windows\system32\fontsub.dll
2009-06-15 21:24 . 2009-06-15 21:24 823296 ----a-w- c:\windows\isRS-000.tmp
2009-06-15 10:45 . 2008-04-14 15:52 78336 ----a-w- c:\windows\system32\telnet.exe
2009-06-10 14:15 . 2008-04-14 15:51 84992 ----a-w- c:\windows\system32\avifil32.dll
2009-06-10 07:21 . 2008-09-09 11:20 2066432 ----a-w- c:\windows\system32\mstscax.dll
2009-06-10 06:16 . 2008-04-14 15:52 132096 ----a-w- c:\windows\system32\wkssvc.dll
2009-06-03 19:11 . 2008-04-14 15:51 1293824 ----a-w- c:\windows\system32\quartz.dll
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll
.

------- Sigcheck -------

[-] 2008-05-26 21:19 1571840 959B66A9B529BA5C4B1B973F1FCD98EE c:\windows\system32\sfcfiles.dll
.
((((((((((((((((((((((((((((( SnapShot@2009-07-23_08.29.10 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-08-19 17:39 . 2009-08-19 17:39 16384 c:\windows\Temp\Perflib_Perfdata_770.dat
+ 2009-08-19 11:07 . 2009-08-19 11:07 16384 c:\windows\Temp\Perflib_Perfdata_74c.dat
+ 2009-08-19 17:39 . 2009-08-19 17:39 16384 c:\windows\Temp\Perflib_Perfdata_374.dat
+ 2009-08-19 11:07 . 2009-08-19 11:07 16384 c:\windows\Temp\Perflib_Perfdata_2cc.dat
+ 2009-08-12 12:35 . 2007-07-03 17:46 57344 c:\windows\system32\wsimd.sys
+ 2009-08-12 12:35 . 2007-10-23 17:47 77824 c:\windows\system32\wgapiloc.dll
+ 2009-08-07 07:01 . 2008-07-06 12:06 89088 c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
+ 2008-04-14 15:51 . 2009-03-08 02:31 46592 c:\windows\system32\pngfilt.dll
+ 2004-08-18 12:00 . 2009-08-14 15:54 68394 c:\windows\system32\perfc009.dat
- 2008-04-14 14:42 . 2007-08-13 16:01 48128 c:\windows\system32\mshtmler.dll
+ 2008-04-14 14:42 . 2009-03-08 02:31 48128 c:\windows\system32\mshtmler.dll
+ 2008-04-14 15:51 . 2009-03-08 02:31 66560 c:\windows\system32\mshtmled.dll
- 2008-04-14 15:52 . 2007-08-13 16:32 45568 c:\windows\system32\mshta.exe
+ 2008-04-14 15:52 . 2009-03-08 02:31 45568 c:\windows\system32\mshta.exe
+ 2007-08-13 16:36 . 2009-03-08 02:31 13312 c:\windows\system32\msfeedssync.exe
+ 2007-08-13 16:54 . 2009-07-03 16:59 55296 c:\windows\system32\msfeedsbs.dll
+ 2008-04-14 15:51 . 2009-03-08 02:34 43008 c:\windows\system32\licmgr10.dll
+ 2008-04-14 15:51 . 2009-07-03 16:59 25600 c:\windows\system32\jsproxy.dll
+ 2008-04-14 15:51 . 2009-03-08 02:32 94720 c:\windows\system32\inseng.dll
+ 2008-04-14 15:51 . 2009-03-08 02:31 34816 c:\windows\system32\imgutil.dll
+ 2008-04-14 15:51 . 2009-03-08 02:32 71680 c:\windows\system32\iesetup.dll
+ 2008-04-14 15:51 . 2009-03-08 02:32 55808 c:\windows\system32\iernonce.dll
+ 2007-08-13 16:36 . 2009-03-08 02:31 59904 c:\windows\system32\icardie.dll
+ 2009-08-12 12:35 . 2007-10-23 17:26 82017 c:\windows\system32\dsaNac.dll
+ 2009-08-12 12:35 . 2007-07-03 17:46 57344 c:\windows\system32\drivers\wsimd.sys
+ 2009-05-01 21:02 . 2009-05-01 21:02 90112 c:\windows\system32\dpl100.dll
+ 2008-04-14 15:52 . 2009-06-25 08:27 54272 c:\windows\system32\dllcache\wdigest.dll
+ 2008-04-14 15:52 . 2009-06-15 10:45 78336 c:\windows\system32\dllcache\telnet.exe
+ 2008-04-14 15:51 . 2009-06-25 08:27 56832 c:\windows\system32\dllcache\secur32.dll
- 2008-04-14 15:51 . 2009-02-03 19:58 56832 c:\windows\system32\dllcache\secur32.dll
+ 2008-04-14 15:51 . 2009-03-08 02:31 46592 c:\windows\system32\dllcache\pngfilt.dll
- 2008-04-14 14:42 . 2007-08-13 16:01 48128 c:\windows\system32\dllcache\mshtmler.dll
+ 2008-04-14 14:42 . 2009-03-08 02:31 48128 c:\windows\system32\dllcache\mshtmler.dll
+ 2008-04-14 15:51 . 2009-03-08 02:31 66560 c:\windows\system32\dllcache\mshtmled.dll
- 2008-04-14 15:52 . 2007-08-13 16:32 45568 c:\windows\system32\dllcache\mshta.exe
+ 2008-04-14 15:52 . 2009-03-08 02:31 45568 c:\windows\system32\dllcache\mshta.exe
+ 2008-08-26 08:26 . 2009-07-03 16:59 55296 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2008-04-14 15:51 . 2009-03-08 02:34 43008 c:\windows\system32\dllcache\licmgr10.dll
+ 2008-04-14 07:01 . 2009-06-24 11:18 92928 c:\windows\system32\dllcache\ksecdd.sys
+ 2008-04-14 15:51 . 2009-07-03 16:59 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2008-04-14 15:51 . 2009-03-08 02:32 94720 c:\windows\system32\dllcache\inseng.dll
+ 2008-04-14 15:51 . 2009-03-08 02:31 34816 c:\windows\system32\dllcache\imgutil.dll
+ 2008-04-14 15:51 . 2009-03-08 02:32 71680 c:\windows\system32\dllcache\iesetup.dll
+ 2008-04-14 15:51 . 2009-03-08 02:32 55808 c:\windows\system32\dllcache\iernonce.dll
+ 2008-08-26 08:26 . 2009-03-08 02:31 59904 c:\windows\system32\dllcache\icardie.dll
+ 2008-09-09 11:22 . 2009-03-08 02:24 68608 c:\windows\system32\dllcache\hmmapi.dll
+ 2008-04-14 15:51 . 2009-03-08 02:33 18944 c:\windows\system32\dllcache\corpol.dll
+ 2008-04-14 15:51 . 2009-06-10 14:15 84992 c:\windows\system32\dllcache\avifil32.dll
- 2008-04-14 15:51 . 2008-04-14 15:51 84992 c:\windows\system32\dllcache\avifil32.dll
- 2008-04-14 15:51 . 2008-04-14 15:51 58880 c:\windows\system32\dllcache\atl.dll
+ 2008-04-14 15:51 . 2009-07-17 19:04 58880 c:\windows\system32\dllcache\atl.dll
+ 2008-04-14 15:51 . 2009-03-08 02:32 72704 c:\windows\system32\dllcache\admparse.dll
+ 2008-04-14 15:51 . 2009-03-08 02:33 18944 c:\windows\system32\corpol.dll
+ 2009-08-12 12:45 . 2007-06-20 18:14 75776 c:\windows\system32\Atheros_L2\DriUpdate32.exe
+ 2009-08-12 12:35 . 2007-10-23 17:46 90112 c:\windows\system32\athcfg11resloc.dll
+ 2008-04-14 15:51 . 2009-03-08 02:32 72704 c:\windows\system32\admparse.dll
+ 2009-07-29 22:41 . 2009-07-29 22:41 22528 c:\windows\Installer\bb643f.msi
+ 2009-07-29 22:26 . 2009-07-29 22:26 25214 c:\windows\Installer\{CC016F21-3970-11DE-B878-005056806466}\UNINST_Uninstall_G_408FFBEED62349E08B232864A94D2864.exe
+ 2009-07-29 22:26 . 2009-07-29 22:26 25214 c:\windows\Installer\{CC016F21-3970-11DE-B878-005056806466}\ShortcutOGL_EB071909B9884F8CBF3D6115D4ADEE5E.exe
+ 2009-07-29 22:26 . 2009-07-29 22:26 25214 c:\windows\Installer\{CC016F21-3970-11DE-B878-005056806466}\ShortcutDX_EB071909B9884F8CBF3D6115D4ADEE5E.exe
+ 2009-07-29 22:26 . 2009-07-29 22:26 25214 c:\windows\Installer\{CC016F21-3970-11DE-B878-005056806466}\googleearth.exe1_407B9B5CDAC54F44A756B57CAB4E6A8B.exe
+ 2009-07-29 22:26 . 2009-07-29 22:26 25214 c:\windows\Installer\{CC016F21-3970-11DE-B878-005056806466}\googleearth.exe_407B9B5CDAC54F44A756B57CAB4E6A8B.exe
+ 2009-07-29 22:26 . 2009-07-29 22:26 25214 c:\windows\Installer\{CC016F21-3970-11DE-B878-005056806466}\ARPPRODUCTICON.exe
+ 2009-07-29 13:54 . 2009-03-08 02:33 12288 c:\windows\ie8updates\KB972260-IE8\xpshims.dll
+ 2009-07-29 13:54 . 2009-03-08 02:31 55296 c:\windows\ie8updates\KB972260-IE8\msfeedsbs.dll
+ 2009-07-29 13:54 . 2009-03-08 02:33 25600 c:\windows\ie8updates\KB972260-IE8\jsproxy.dll
+ 2009-07-28 10:30 . 2009-03-08 14:57 58448 c:\windows\ie8\spuninst\iecustom.dll
+ 2009-07-28 10:28 . 2009-04-29 04:47 44544 c:\windows\ie8\pngfilt.dll
+ 2009-07-28 10:28 . 2007-08-13 16:01 48128 c:\windows\ie8\mshtmler.dll
+ 2009-07-28 10:28 . 2007-08-13 16:32 45568 c:\windows\ie8\mshta.exe
+ 2009-07-28 10:28 . 2007-08-13 16:36 12288 c:\windows\ie8\msfeedssync.exe
+ 2009-07-28 10:27 . 2009-04-29 04:47 52224 c:\windows\ie8\msfeedsbs.dll
+ 2009-07-28 10:28 . 2007-08-13 16:44 40960 c:\windows\ie8\licmgr10.dll
+ 2009-07-28 10:28 . 2009-04-29 04:47 27648 c:\windows\ie8\jsproxy.dll
+ 2009-07-28 10:28 . 2007-08-13 16:39 92672 c:\windows\ie8\inseng.dll
+ 2009-07-28 10:28 . 2007-08-13 16:36 36352 c:\windows\ie8\imgutil.dll
+ 2009-07-28 10:28 . 2007-08-13 16:39 55296 c:\windows\ie8\iesetup.dll
+ 2009-07-28 10:28 . 2009-04-29 04:47 44544 c:\windows\ie8\iernonce.dll
+ 2009-07-28 10:27 . 2009-04-29 04:47 78336 c:\windows\ie8\ieencode.dll
+ 2009-07-28 10:28 . 2009-04-28 09:04 70656 c:\windows\ie8\ie4uinit.exe
+ 2009-07-28 10:27 . 2009-04-29 04:47 63488 c:\windows\ie8\icardie.dll
+ 2009-07-28 10:28 . 2007-08-13 16:18 60416 c:\windows\ie8\hmmapi.dll
+ 2009-07-28 10:28 . 2008-04-14 15:51 35328 c:\windows\ie8\corpol.dll
+ 2009-07-28 10:27 . 2007-08-13 16:39 71680 c:\windows\ie8\admparse.dll
+ 2009-08-07 07:00 . 2008-07-06 12:06 89088 c:\windows\Driver Cache\i386\filterpipelineprintproc.dll
+ 2009-08-07 16:26 . 2009-08-07 16:26 81920 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\e95ad52e7d980646a1ed3d09c51773cc\Microsoft.Build.Framework.ni.dll
+ 2009-08-07 16:26 . 2009-08-07 16:26 15360 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\d9e555e507a34146b0a4687a46b2f1c6\dfsvc.ni.exe
+ 2009-08-07 15:27 . 2009-08-07 15:27 26624 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\51a77ddbe8a9be428795f6f912aa82ec\Accessibility.ni.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 86016 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 86016 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2009-02-12 15:02 . 2009-02-12 15:02 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2009-02-12 15:02 . 2009-02-12 15:02 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2009-02-12 15:02 . 2009-02-12 15:02 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 73728 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 73728 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 36864 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 36864 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 68608 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 68608 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2009-08-06 21:44 . 2009-08-06 21:44 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2009-07-28 10:32 . 2009-03-08 02:35 2048 c:\windows\ie8updates\KB972636-IE8\iecompat.dll
- 2009-02-12 15:02 . 2009-02-12 15:02 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2009-02-12 15:03 . 2009-02-12 15:03 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 5632 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 5632 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 114176 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 114176 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 635904 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 558080 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcp80.dll
+ 2008-07-25 09:17 . 2008-07-25 09:17 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcm80.dll
+ 2009-08-12 12:35 . 2007-10-23 17:39 249925 c:\windows\system32\wsimd.dll
+ 2009-08-12 12:35 . 2007-10-23 17:39 254023 c:\windows\system32\wsfwDS.dll
+ 2007-08-13 16:45 . 2009-03-08 02:34 208384 c:\windows\system32\WinFXDocObj.exe
+ 2009-08-12 12:35 . 2007-10-23 17:33 376923 c:\windows\system32\wgapi.dll
+ 2008-04-14 15:52 . 2009-03-08 02:34 236544 c:\windows\system32\webcheck.dll
+ 2009-08-12 12:35 . 2007-10-23 17:33 344156 c:\windows\system32\wcapiU.dll
+ 2009-08-12 12:35 . 2007-10-23 17:31 393216 c:\windows\system32\wcapi.dll
+ 2008-04-14 15:52 . 2009-03-08 02:33 420352 c:\windows\system32\vbscript.dll
+ 2008-04-14 15:52 . 2009-03-08 02:34 105984 c:\windows\system32\url.dll
- 2008-04-14 15:52 . 2009-04-29 04:47 105984 c:\windows\system32\url.dll
+ 2009-08-07 07:01 . 2008-07-06 12:06 765440 c:\windows\system32\spool\XPSEP\i386\mxdwdrv.dll
+ 2009-08-07 07:01 . 2008-07-06 12:06 765440 c:\windows\system32\spool\XPSEP\i386\i386\mxdwdrv.dll
+ 2009-08-07 07:01 . 2008-07-06 12:06 748032 c:\windows\system32\spool\XPSEP\amd64\mxdwdrv.dll
+ 2009-08-07 07:01 . 2008-07-06 12:06 748032 c:\windows\system32\spool\XPSEP\amd64\amd64\mxdwdrv.dll
+ 2009-08-07 07:01 . 2008-07-06 12:06 147456 c:\windows\system32\spool\prtprocs\x64\filterpipelineprintproc.dll
+ 2009-08-07 07:00 . 2008-07-06 10:50 597504 c:\windows\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
+ 2009-08-07 07:00 . 2008-03-13 04:52 761344 c:\windows\system32\spool\drivers\w32x86\3\unires.dll
+ 2009-08-07 07:00 . 2008-07-06 12:06 744960 c:\windows\system32\spool\drivers\w32x86\3\unidrvui.dll
+ 2009-08-07 07:00 . 2008-07-06 12:06 373248 c:\windows\system32\spool\drivers\w32x86\3\unidrv.dll
+ 2009-08-07 07:00 . 2008-07-06 12:06 198656 c:\windows\system32\spool\drivers\w32x86\3\mxdwdui.dll
+ 2009-08-07 07:00 . 2008-07-06 12:06 765440 c:\windows\system32\spool\drivers\w32x86\3\mxdwdrv.dll
+ 2008-04-14 15:51 . 2009-06-25 08:27 147456 c:\windows\system32\schannel.dll
+ 2006-08-24 14:15 . 2006-08-24 14:15 150808 c:\windows\system32\rgb9rast_2.dll
+ 2009-08-12 13:10 . 2006-10-12 14:28 604928 c:\windows\system32\ReinstallBackups\0005\DriverFiles\BCMWL5.SYS
+ 2004-08-18 12:00 . 2009-08-14 15:54 418128 c:\windows\system32\perfh009.dat
+ 2008-04-14 15:51 . 2009-07-03 16:59 206848 c:\windows\system32\occache.dll
+ 2008-04-14 15:51 . 2009-03-08 02:32 611840 c:\windows\system32\mstime.dll
+ 2008-04-14 15:51 . 2009-03-08 02:34 193536 c:\windows\system32\msrating.dll
+ 2004-08-18 12:00 . 2009-03-08 02:22 156160 c:\windows\system32\msls31.dll
- 2004-08-18 12:00 . 2007-08-13 16:54 156160 c:\windows\system32\msls31.dll
+ 2007-08-13 16:54 . 2009-07-03 16:59 594432 c:\windows\system32\msfeeds.dll
+ 2008-04-14 15:51 . 2009-03-08 02:33 726528 c:\windows\system32\jscript.dll
+ 2009-08-06 08:47 . 2009-07-25 03:23 149280 c:\windows\system32\javaws.exe
+ 2009-08-06 08:47 . 2009-07-25 03:23 145184 c:\windows\system32\javaw.exe
+ 2009-08-06 08:47 . 2009-07-25 03:23 145184 c:\windows\system32\java.exe
+ 2007-08-13 16:54 . 2009-03-08 02:22 164352 c:\windows\system32\ieui.dll
+ 2008-04-14 15:51 . 2009-07-03 16:59 184320 c:\windows\system32\iepeers.dll
+ 2008-04-14 15:51 . 2009-07-03 16:59 386048 c:\windows\system32\iedkcs32.dll
+ 2007-07-11 10:27 . 2009-03-08 02:11 445952 c:\windows\system32\ieapfltr.dll
+ 2004-08-18 12:00 . 2009-03-08 02:32 163840 c:\windows\system32\ieakui.dll
+ 2008-04-14 15:51 . 2009-03-08 02:33 229376 c:\windows\system32\ieaksie.dll
+ 2008-04-14 15:51 . 2009-03-08 02:33 125952 c:\windows\system32\ieakeng.dll
+ 2008-04-14 15:52 . 2009-07-03 11:01 173056 c:\windows\system32\ie4uinit.exe
+ 2008-04-14 15:51 . 2009-03-08 02:31 216064 c:\windows\system32\dxtrans.dll
+ 2008-04-14 15:51 . 2009-03-08 02:31 348160 c:\windows\system32\dxtmsft.dll
+ 2008-04-14 15:52 . 2009-07-13 21:43 286208 c:\windows\system32\dllcache\wmpdxm.dll
+ 2008-04-14 15:52 . 2009-06-10 06:16 132096 c:\windows\system32\dllcache\wkssvc.dll
- 2008-04-14 15:52 . 2008-04-14 15:52 132096 c:\windows\system32\dllcache\wkssvc.dll
+ 2008-04-14 15:52 . 2009-07-03 16:59 915456 c:\windows\system32\dllcache\wininet.dll
+ 2008-04-14 15:52 . 2009-03-08 02:34 236544 c:\windows\system32\dllcache\webcheck.dll
+ 2008-09-09 11:23 . 2009-03-08 02:33 759296 c:\windows\system32\dllcache\VGX.dll
+ 2008-04-14 15:52 . 2009-03-08 02:33 420352 c:\windows\system32\dllcache\vbscript.dll
- 2008-04-14 15:52 . 2009-04-29 04:47 105984 c:\windows\system32\dllcache\url.dll
+ 2008-04-14 15:52 . 2009-03-08 02:34 105984 c:\windows\system32\dllcache\url.dll
+ 2009-01-07 16:20 . 2009-01-07 16:20 134144 c:\windows\system32\dllcache\sqmapi.dll
+ 2008-04-14 15:51 . 2009-06-25 08:27 147456 c:\windows\system32\dllcache\schannel.dll
+ 2008-04-14 15:51 . 2009-07-03 16:59 206848 c:\windows\system32\dllcache\occache.dll
+ 2008-04-14 15:51 . 2009-08-05 09:01 205312 c:\windows\system32\dllcache\mswebdvd.dll
+ 2008-04-14 15:51 . 2009-06-25 08:27 136192 c:\windows\system32\dllcache\msv1_0.dll
+ 2008-04-14 15:51 . 2009-03-08 02:32 611840 c:\windows\system32\dllcache\mstime.dll
+ 2008-04-14 15:51 . 2009-03-08 02:34 193536 c:\windows\system32\dllcache\msrating.dll
- 2004-08-18 12:00 . 2007-08-13 16:54 156160 c:\windows\system32\dllcache\msls31.dll
+ 2004-08-18 12:00 . 2009-03-08 02:22 156160 c:\windows\system32\dllcache\msls31.dll
+ 2008-08-26 08:26 . 2009-07-03 16:59 594432 c:\windows\system32\dllcache\msfeeds.dll
+ 2008-04-14 15:51 . 2009-06-25 08:27 729088 c:\windows\system32\dllcache\lsasrv.dll
+ 2008-04-14 15:51 . 2009-06-25 08:27 301568 c:\windows\system32\dllcache\kerberos.dll
+ 2008-04-14 15:51 . 2009-03-08 02:33 726528 c:\windows\system32\dllcache\jscript.dll
+ 2008-09-09 11:22 . 2009-03-08 12:09 638816 c:\windows\system32\dllcache\iexplore.exe
+ 2008-04-14 15:51 . 2009-07-03 16:59 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2008-04-14 15:51 . 2009-07-03 16:59 386048 c:\windows\system32\dllcache\iedkcs32.dll
+ 2008-08-26 08:26 . 2009-03-08 02:11 445952 c:\windows\system32\dllcache\ieapfltr.dll
+ 2004-08-18 12:00 . 2009-03-08 02:32 163840 c:\windows\system32\dllcache\ieakui.dll
+ 2008-04-14 15:51 . 2009-03-08 02:33 229376 c:\windows\system32\dllcache\ieaksie.dll
+ 2008-04-14 15:51 . 2009-03-08 02:33 125952 c:\windows\system32\dllcache\ieakeng.dll
+ 2008-04-14 15:52 . 2009-07-03 11:01 173056 c:\windows\system32\dllcache\ie4uinit.exe
+ 2008-04-14 15:51 . 2009-03-08 02:31 216064 c:\windows\system32\dllcache\dxtrans.dll
+ 2008-04-14 15:51 . 2009-03-08 02:31 348160 c:\windows\system32\dllcache\dxtmsft.dll
+ 2008-04-14 15:51 . 2009-03-08 02:32 128512 c:\windows\system32\dllcache\advpack.dll
+ 2009-05-01 21:02 . 2009-05-01 21:02 811008 c:\windows\system32\divx_xx16.dll
+ 2009-05-01 21:02 . 2009-05-01 21:02 802816 c:\windows\system32\divx_xx11.dll
+ 2009-05-01 21:02 . 2009-05-01 21:02 823296 c:\windows\system32\divx_xx0c.dll
+ 2009-05-01 21:02 . 2009-05-01 21:02 815104 c:\windows\system32\divx_xx0a.dll
+ 2009-05-01 21:02 . 2009-05-01 21:02 823296 c:\windows\system32\divx_xx07.dll
+ 2009-05-01 21:02 . 2009-05-01 21:02 685056 c:\windows\system32\DivX.dll
+ 2009-08-12 12:35 . 2007-10-23 17:35 303199 c:\windows\system32\athcfg20U.dll
+ 2009-08-12 12:35 . 2007-10-23 17:35 114792 c:\windows\system32\athcfg20resU.dll
+ 2009-08-12 12:35 . 2007-10-23 17:30 114766 c:\windows\system32\athcfg20res.dll
+ 2009-08-12 12:35 . 2007-10-23 17:31 237568 c:\windows\system32\athcfg20.dll
+ 2008-04-14 15:51 . 2009-03-08 02:32 128512 c:\windows\system32\advpack.dll
+ 2009-08-12 12:35 . 2007-10-23 17:35 364629 c:\windows\system32\acs.exe
+ 2009-08-04 19:44 . 2009-08-04 19:44 152576 c:\windows\Installer\cf0e0f.msi
+ 2009-08-18 19:33 . 2009-08-18 19:33 814592 c:\windows\Installer\302e18.msi
+ 2009-07-28 10:32 . 2008-07-08 12:59 391032 c:\windows\ie8updates\KB972636-IE8\spuninst\updspapi.dll
+ 2009-07-28 10:32 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB972636-IE8\spuninst\spuninst.exe
+ 2009-07-29 13:54 . 2009-03-08 02:34 914944 c:\windows\ie8updates\KB972260-IE8\wininet.dll
+ 2009-07-29 13:54 . 2009-05-26 11:40 391032 c:\windows\ie8updates\KB972260-IE8\spuninst\updspapi.dll
+ 2009-07-29 13:54 . 2009-05-26 11:40 233848 c:\windows\ie8updates\KB972260-IE8\spuninst\spuninst.exe
+ 2009-07-29 13:54 . 2009-03-08 02:34 109568 c:\windows\ie8updates\KB972260-IE8\occache.dll
+ 2009-07-29 13:54 . 2009-03-08 02:32 594432 c:\windows\ie8updates\KB972260-IE8\msfeeds.dll
+ 2009-07-29 13:54 . 2009-03-08 02:33 246784 c:\windows\ie8updates\KB972260-IE8\ieproxy.dll
+ 2009-07-29 13:54 . 2009-03-08 02:31 183808 c:\windows\ie8updates\KB972260-IE8\iepeers.dll
+ 2009-07-29 13:54 . 2009-03-08 12:09 391536 c:\windows\ie8updates\KB972260-IE8\iedkcs32.dll
+ 2009-07-29 13:54 . 2009-03-08 02:32 173056 c:\windows\ie8updates\KB972260-IE8\ie4uinit.exe
+ 2009-07-28 10:28 . 2009-04-29 04:47 827392 c:\windows\ie8\wininet.dll
+ 2009-07-28 10:28 . 2007-08-13 16:45 206336 c:\windows\ie8\winfxdocobj.exe
+ 2009-07-28 10:28 . 2009-04-29 04:47 233472 c:\windows\ie8\webcheck.dll
+ 2009-07-28 10:28 . 2008-05-27 17:26 765952 c:\windows\ie8\vgx.dll
+ 2009-07-28 10:28 . 2008-05-09 10:56 430080 c:\windows\ie8\vbscript.dll
+ 2009-07-28 10:28 . 2009-04-29 04:47 105984 c:\windows\ie8\url.dll
+ 2009-07-28 10:30 . 2009-01-07 16:20 390688 c:\windows\ie8\spuninst\updspapi.dll
+ 2009-07-28 10:30 . 2009-01-07 16:20 234016 c:\windows\ie8\spuninst\spuninst.exe
+ 2009-07-28 10:27 . 2006-09-06 15:42 215776 c:\windows\ie8\spuninst.exe
+ 2009-07-28 10:28 . 2009-04-29 04:47 102912 c:\windows\ie8\occache.dll
+ 2009-07-28 10:28 . 2009-04-29 04:47 671232 c:\windows\ie8\mstime.dll
+ 2009-07-28 10:28 . 2009-04-29 04:47 193024 c:\windows\ie8\msrating.dll
+ 2009-07-28 10:28 . 2007-08-13 16:54 156160 c:\windows\ie8\msls31.dll
+ 2009-07-28 10:28 . 2009-04-29 04:47 477696 c:\windows\ie8\mshtmled.dll
+ 2009-07-28 10:27 . 2009-04-29 04:47 459264 c:\windows\ie8\msfeeds.dll
+ 2009-07-28 10:28 . 2008-05-09 10:56 512000 c:\windows\ie8\jscript.dll
+ 2009-07-28 10:28 . 2009-04-25 05:27 636088 c:\windows\ie8\iexplore.exe
+ 2009-07-28 10:28 . 2007-08-13 16:54 180736 c:\windows\ie8\ieui.dll
+ 2009-07-28 10:27 . 2009-04-29 04:47 268288 c:\windows\ie8\iertutil.dll
+ 2009-07-28 10:28 . 2007-08-13 16:54 287744 c:\windows\ie8\ieproxy.dll
+ 2009-07-28 10:28 . 2007-08-13 16:54 191488 c:\windows\ie8\iepeers.dll
+ 2009-07-28 10:28 . 2009-04-29 04:47 385024 c:\windows\ie8\iedkcs32.dll
+ 2009-07-28 10:27 . 2009-04-29 04:47 383488 c:\windows\ie8\ieapfltr.dll
+ 2009-07-28 10:28 . 2009-04-25 05:26 161792 c:\windows\ie8\ieakui.dll
+ 2009-07-28 10:28 . 2009-04-29 04:47 230400 c:\windows\ie8\ieaksie.dll
+ 2009-07-28 10:28 . 2009-04-29 04:47 153088 c:\windows\ie8\ieakeng.dll
+ 2009-07-28 10:28 . 2009-04-29 04:47 214528 c:\windows\ie8\dxtrans.dll
+ 2009-07-28 10:28 . 2009-04-29 04:47 347136 c:\windows\ie8\dxtmsft.dll
+ 2009-07-28 10:28 . 2009-04-29 04:47 124928 c:\windows\ie8\advpack.dll
+ 2009-08-07 07:00 . 2008-03-13 04:52 761344 c:\windows\Driver Cache\i386\unires.dll
+ 2009-08-07 07:00 . 2008-07-06 12:06 744960 c:\windows\Driver Cache\i386\unidrvui.dll
+ 2009-08-07 07:00 . 2008-07-06 12:06 373248 c:\windows\Driver Cache\i386\unidrv.dll
+ 2009-08-07 07:00 . 2008-07-06 12:06 198656 c:\windows\Driver Cache\i386\mxdwdui.dll
+ 2009-08-07 07:00 . 2008-07-06 12:06 765440 c:\windows\Driver Cache\i386\mxdwdrv.dll
+ 2009-08-07 16:39 . 2009-08-07 16:39 237568 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\f6e3bfe93937a745bddeaec17db21691\System.Web.RegularExpressions.ni.dll
+ 2009-08-07 16:38 . 2009-08-07 16:38 684032 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\07d8dfc7d37b6c4289b0fff163d31947\System.Transactions.ni.dll
+ 2009-08-07 16:38 . 2009-08-07 16:38 729088 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\6585994177de874898a342ad3513e310\System.Security.ni.dll
+ 2009-08-07 16:38 . 2009-08-07 16:38 294912 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\16e7c7bfa72c0745bfd7483f9951d4e2\System.EnterpriseServices.Wrapper.dll
+ 2009-08-07 16:38 . 2009-08-07 16:38 659456 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\16e7c7bfa72c0745bfd7483f9951d4e2\System.EnterpriseServices.ni.dll
+ 2009-08-07 16:38 . 2009-08-07 16:38 229376 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\f0ef9d933464f14b9bcc058b9656e589\System.Drawing.Design.ni.dll
+ 2009-08-07 16:38 . 2009-08-07 16:38 512000 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\401e7213cf38b9448052cf473a481b7c\System.DirectoryServices.Protocols.ni.dll
+ 2009-08-07 16:26 . 2009-08-07 16:26 962560 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\a941aba0f5c455498c12b849b976cb03\System.Configuration.ni.dll
+ 2009-08-07 16:26 . 2009-08-07 16:26 163840 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\d88c2bc6ee2fab429aa22bb6d424b956\Microsoft.Build.Utilities.ni.dll
+ 2009-08-07 16:26 . 2009-08-07 16:26 880640 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\c97d388ebef6fa4db0773c7a0fdb1080\Microsoft.Build.Engine.ni.dll
+ 2009-08-07 16:26 . 2009-08-07 16:26 237568 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\00f4200b28e0e345b51effb470de33d7\CustomMarshalers.ni.dll
+ 2009-08-07 16:26 . 2009-08-07 16:26 860160 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\718a10722a514c40bb065bd18e21bf44\AspNetMMCExt.ni.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 823296 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 823296 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 299008 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 299008 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 368640 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 368640 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 700416 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 700416 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 397312 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 397312 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 884736 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 884736 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 716800 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 716800 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 389120 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 389120 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 667648 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 667648 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 745472 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 745472 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 647168 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 647168 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 413696 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 413696 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 503808 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2009-02-12 15:02 . 2009-02-12 15:02 503808 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 260096 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 260096 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 114176 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 114176 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 482304 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 482304 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2008-04-14 15:52 . 2009-07-03 16:59 1208832 c:\windows\system32\urlmon.dll
+ 2009-08-07 07:01 . 2008-07-06 12:06 1676288 c:\windows\system32\spool\XPSEP\i386\xpssvcs.dll
+ 2009-08-07 07:01 . 2008-07-06 12:06 1676288 c:\windows\system32\spool\XPSEP\i386\i386\xpssvcs.dll
+ 2009-08-07 07:01 . 2008-07-06 15:36 2936832 c:\windows\system32\spool\XPSEP\amd64\xpssvcs.dll
+ 2009-08-07 07:01 . 2008-07-06 15:36 2936832 c:\windows\system32\spool\XPSEP\amd64\amd64\xpssvcs.dll
+ 2009-08-07 07:00 . 2008-07-06 12:06 1676288 c:\windows\system32\spool\drivers\w32x86\3\XpsSvcs.dll
+ 2008-04-14 15:51 . 2009-07-19 13:16 5937152 c:\windows\system32\mshtml.dll
+ 2007-08-13 16:34 . 2009-07-03 16:59 1985536 c:\windows\system32\iertutil.dll
+ 2007-02-12 14:10 . 2009-02-06 19:07 3698584 c:\windows\system32\ieapfltr.dat
+ 2009-08-12 12:35 . 2007-10-23 17:26 1257566 c:\windows\system32\dsa.dll
+ 2008-04-14 15:52 . 2009-07-03 16:59 1208832 c:\windows\system32\dllcache\urlmon.dll
+ 2009-06-10 07:21 . 2009-06-10 07:21 2066432 c:\windows\system32\dllcache\mstscax.dll
+ 2008-09-09 11:22 . 2009-07-10 13:28 1315328 c:\windows\system32\dllcache\msoe.dll
+ 2008-04-14 15:51 . 2009-07-19 13:16 5937152 c:\windows\system32\dllcache\mshtml.dll
+ 2008-08-26 08:26 . 2009-07-03 16:59 1985536 c:\windows\system32\dllcache\iertutil.dll
+ 2007-04-17 09:32 . 2009-02-06 19:07 3698584 c:\windows\system32\dllcache\ieapfltr.dat
+ 2009-07-29 22:26 . 2009-07-29 22:26 1401344 c:\windows\Installer\ae941e.msi
+ 2009-07-29 13:54 . 2009-03-08 02:34 1206784 c:\windows\ie8updates\KB972260-IE8\urlmon.dll
+ 2009-07-29 13:54 . 2009-03-08 02:41 5937152 c:\windows\ie8updates\KB972260-IE8\mshtml.dll
+ 2009-07-29 13:54 . 2009-03-08 02:32 1985024 c:\windows\ie8updates\KB972260-IE8\iertutil.dll
+ 2009-07-28 10:28 . 2009-04-29 04:47 1159680 c:\windows\ie8\urlmon.dll
+ 2009-07-28 10:28 . 2009-04-29 04:47 3596288 c:\windows\ie8\mshtml.dll
+ 2009-07-28 10:27 . 2009-04-29 04:47 6066176 c:\windows\ie8\ieframe.dll
+ 2009-07-28 10:27 . 2008-07-09 14:25 2455488 c:\windows\ie8\ieapfltr.dat
+ 2009-08-07 15:27 . 2009-08-07 15:27 8093696 c:\windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8.tmp\System.dll
+ 2009-08-07 16:26 . 2009-08-07 16:26 8093696 c:\windows\assembly\NativeImages_v2.0.50727_32\System\868906986b04c34dab9e5118744b881a\System.ni.dll
+ 2009-08-07 16:39 . 2009-08-07 16:39 5640192 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\327d4cd9a1551e4faa1f006ef031187c\System.Xml.ni.dll
+ 2009-08-07 16:39 . 2009-08-07 16:39 1945600 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\ee3f18129187f24c87b707b3844297b4\System.Web.Services.ni.dll
+ 2009-08-07 16:39 . 2009-08-07 16:39 2310144 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\a831424059ab9c4e914fcb63d9053993\System.Web.Mobile.ni.dll
+ 2009-08-07 16:38 . 2009-08-07 16:38 1626112 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\cdb1c596ff98544bb93451678d4b732f\System.Drawing.ni.dll
+ 2009-08-07 16:38 . 2009-08-07 16:38 1220608 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\b837976d19317841aea3026a16022001\System.DirectoryServices.ni.dll
+ 2009-08-07 16:26 . 2009-08-07 16:26 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\d2b813f7fca1b544937433552403e675\System.Deployment.ni.dll
+ 2009-08-07 16:26 . 2009-08-07 16:26 6688768 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\595772183cb52444905160816f1dd289\System.Data.ni.dll
+ 2009-08-07 16:26 . 2009-08-07 16:26 1724416 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\9f456856a183314db24ad587520439d4\Microsoft.VisualBasic.ni.dll
+ 2009-08-07 16:26 . 2009-08-07 16:26 1691648 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\d18c7762c9295c47a67a1565db9a2a8a\Microsoft.Build.Tasks.ni.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 3018752 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 3018752 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 2035712 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 2035712 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 5316608 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 5316608 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 5050368 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 5050368 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2009-08-07 07:08 . 2009-08-07 07:08 5025792 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 5025792 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 2878976 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 2878976 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
- 2009-02-12 15:03 . 2009-02-12 15:03 4308992 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2009-08-07 07:07 . 2009-08-07 07:07 4308992 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2008-04-14 15:52 . 2009-07-13 21:43 10841088 c:\windows\system32\wmp.dll
+ 2008-11-01 12:01 . 2009-07-30 00:49 24281536 c:\windows\system32\MRT.exe
+ 2007-08-13 16:54 . 2009-07-19 16:46 11067392 c:\windows\system32\ieframe.dll
+ 2008-04-14 15:52 . 2009-07-13 21:43 10841088 c:\windows\system32\dllcache\wmp.dll
+ 2008-10-03 17:26 . 2009-07-19 16:46 11067392 c:\windows\system32\dllcache\ieframe.dll
+ 2009-07-29 13:54 . 2009-03-08 02:39 11063808 c:\windows\ie8updates\KB972260-IE8\ieframe.dll
+ 2009-08-07 16:39 . 2009-08-07 16:39 13107200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb63cb306ded814697aefba018211701\System.Windows.Forms.ni.dll
+ 2009-08-07 16:38 . 2009-08-07 16:39 11808768 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\873f8dbbddb5bf4e90816d5f5ec30933\System.Web.ni.dll
+ 2009-08-07 16:32 . 2009-08-07 16:32 10723328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\57153f996e6cd841bd3dc4b2cc0cb513\System.Design.ni.dll
+ 2009-08-07 15:26 . 2009-08-07 15:26 11415552 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\384471f05ff7234794c8e1519d26a4d6\mscorlib.ni.dll
.
-- Snímek resetován k současnému datu --
.

[Michal.S]

-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2009-04-02 10:47 333192 ----a-w- c:\program files\AskBarDis\bar\bin\askBar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-07-29 39408]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2009-08-12 288048]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SMSERIAL"="c:\windows\sm56hlpr.exe" [2006-03-21 544768]
"HControl"="c:\windows\ATK0100\HControl.exe" [2006-10-14 110592]
"AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2008-09-09 1177368]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-26 161328]
"SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2008-10-03 2776576]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-05-25 786521]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-25 149280]
"ACU"="c:\program files\Atheros\ACU.exe" [2007-10-23 376921]
"Control Center"="c:\program files\ASUS\WLAN Card Utilities\Center.exe" [2006-11-10 1725440]
"RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.exe [2006-10-30 16269312]
"SkyTel"="SkyTel.EXE" - c:\windows\SkyTel.exe [2006-05-16 2879488]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\Asus\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Xfire.lnk - c:\program files\Xfire\xfire.exe [2009-8-13 3109264]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\avgrsstx.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /p \??\C:\0autocheck autochk *

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Bluetooth Manager.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Bluetooth Manager.lnk
backup=c:\windows\pss\Bluetooth Manager.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UpdatesDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgupd.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgemc.exe"=
"c:\\Program Files\\Xfire\\xfire.exe"=
"c:\\Program Files\\HLSW\\hlsw.exe"=
"c:\\Program Files\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"c:\\Program Files\\mIRC\\mirc.exe"=
"c:\\Program Files\\BitSpirit\\BitSpirit.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [9.9.2008 16:21 96520]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [3.10.2008 7:40 138624]
R2 avg8wd;AVG8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [9.9.2008 16:21 282904]
R2 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [9.9.2008 16:21 75272]
R2 Ethpdrv;Ethernet Packet Driver;c:\windows\system32\drivers\ethpdrv.sys [3.10.2008 9:08 9728]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [1.12.2008 9:55 222456]
R2 StkSSrv;Syntek AVStream USB2.0 WebCam Service;c:\windows\system32\StkCSrv.exe [19.4.2007 6:42 24576]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service;c:\windows\system32\TUProgSt.exe [16.1.2009 19:24 603904]
R3 ASNDIS5;ASNDIS5 Protocol Driver;c:\windows\system32\ASNDIS5.sys [9.9.2008 15:57 16269]
R3 StkCMini;Syntek AVStream USB2.0 1.3M WebCam;c:\windows\system32\drivers\StkCMini.sys [6.6.2007 10:40 1260672]
R3 WSIMD;wsimd Service;c:\windows\system32\drivers\wsimd.sys [12.8.2009 14:35 57344]
S2 ASKUpgrade;ASKUpgrade;c:\program files\AskBarDis\bar\bin\ASKUpgrade.exe [12.8.2009 17:04 234888]
S2 avg8emc;AVG8 E-mail Scanner;c:\progra~1\AVG\AVG8\avgemc.exe [9.9.2008 16:21 902424]
S2 gupdate1ca109b7e7cc784;Služba Google Update (gupdate1ca109b7e7cc784);c:\program files\Google\Update\GoogleUpdate.exe [30.7.2009 0:25 133104]
S3 IpwP;IPWireless 3G Network Adapter;c:\windows\system32\drivers\ipw3gnet.sys [3.10.2008 9:03 51040]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Obsah adresáře 'Naplánované úlohy'

2009-08-19 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-11 19:36]

2009-08-19 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-07-29 22:23]

2009-08-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-07-29 22:25]

2009-08-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-07-29 22:25]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.ask.com/?o=13928&l=dis
uInternet Settings,ProxyOverride = *.local
IE: Download Using &BitSpirit - c:\program files\BitSpirit\bsurl.htm
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: ÓñČĚŘľ«ÁéĎÂÔŘ(&B)
FF - ProfilePath - c:\documents and settings\Asus\Data aplikací\Mozilla\Firefox\Profiles\wptznk5q.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... id=afex&q=
FF - component: c:\program files\DAEMON Tools Toolbar\FirefoxDTT\components\DTToolbarFF.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1636.7222\npCIDetect13.dll
FF - plugin: c:\program files\Google\Update\1.2.183.7\npGoogleOneClick8.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll

---- NASTAVENÍ FIREFOXU ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-19 19:39
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
"ImagePath"="\??\D:\Lineage ]
[ Gracia\system\npkcrypt.sys"


[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\npkcrypt]
"ImagePath"="\??\D:\Lineage ]
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
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
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(1084)
c:\windows\system32\Ati2evxx.dll

- - - - - - - > 'explorer.exe'(4064)
c:\program files\Xfire\xfire_toucan_38751.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\ati2evxx.exe
c:\windows\system32\ati2evxx.exe
c:\windows\system32\acs.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\program files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\PnkBstrB.exe
c:\program files\Spyware Terminator\sp_rsser.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\ATK0100\ATKOSD.exe
c:\program files\AVG\AVG8\avgrsx.exe
c:\program files\AVG\AVG8\avgrsx.exe
c:\program files\AVG\AVG8\avgrsx.exe
c:\program files\AVG\AVG8\avgrsx.exe
.
**************************************************************************
.
Celkový čas: 2009-08-19 19:46 - počítač byl restartován
ComboFix-quarantined-files.txt 2009-08-19 17:46
ComboFix2.txt 2009-07-23 08:31

Před spuštěním: 6 110 138 368
Po spuštění: 6 068 535 296

688 --- E O F --- 2009-08-17 08:53

[pitimir]

Prave preto tam bol ten T-Cleaner, v predoslom logu boli vidiet zbytky po CF. Upozornenie: ComboFix nie je hracka na kazdodenne pouzivanie, je to dostatocne silny nastroj nato, aby pri nespravnej manipulacii polozil masinu. Tolko do buducna

Aky je stav PC, bez zmeny?

1) Stiahni GMER, rozbal ho na plochu a spust. Program automaticky zacne scan (po jeho skonceni vloz log c. 1) - pokial pri scanovani nieco najde (=vyskoci nejake upozornenie), klik na "NO" a vpravo zafajknes vsetky polozky OKREM:

• Sections
• IAT/EAT
• Registry
• nesystemovych diskov a particii (system je zvycajne na "C:\" - takze nezaskrtnute nechas "D:\", "E:\"...atd.)
• Show All

Klik na "Scan". Po scane klik na "Save" a log c. 2 vloz sem.

Ak nic nenajde (=nevyskoci nic), zaskrtaj vpravo vsetko a spusti scan. Po jeho ukonceni klik na "Copy" a vloz log c. 2.


2) Stiahni ToolBar S&D. Zavri vsetky spustene prehliadace a spust program. Vyber jazyk - v pripade anglictiny stlac E -> Enter. Vyskoci na teba okno, po jeho odkliknuti sa dostanes do dalsieho menu. V nom stlac 2 -> Enter. Pockaj, kym sa neskonci scan a posli vytvoreny log.

[Michal.S]

Tak tady to je .. u Scanu 2.log byli potiže hned mi naskočila modra obrazkova , něco že by mohlo dojit k poškozeni..

LOG.1
GMER 1.0.15.15077 [gmer.exe] - http://www.gmer.net
Rootkit quick scan 2009-08-20 11:36:48
Windows 5.1.2600 Service Pack 3


---- System - GMER 1.0.15 ----

SSDT spgh.sys ZwEnumerateKey [0xF72BACA2]
SSDT spgh.sys ZwEnumerateValueKey [0xF72BB030]

---- Devices - GMER 1.0.15 ----

Device \FileSystem\Ntfs \Ntfs 84B6D1F8
Device \Driver\Tcpip \Device\Ip avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
Device \Driver\Tcpip \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
Device \Driver\Tcpip \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
Device \Driver\Tcpip \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)

---- EOF - GMER 1.0.15 ----


log.2

GMER 1.0.15.15077 [gmer.exe] - http://www.gmer.net
Rootkit scan 2009-08-20 11:38:46
Windows 5.1.2600 Service Pack 3


---- System - GMER 1.0.15 ----

SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwClose [0xEC31EA74]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwCreateFile [0xEC31E48E]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwCreateKey [0xEC31E16A]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwCreateSection [0xEC31FB10]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwDeleteKey [0xEC31E286]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwDeleteValueKey [0xEC31E36C]
SSDT spgh.sys ZwEnumerateKey [0xF72BACA2]
SSDT spgh.sys ZwEnumerateValueKey [0xF72BB030]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwLoadDriver [0xEC31ED38]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwOpenFile [0xEC31E7D0]
SSDT spgh.sys ZwOpenKey [0xF729C0C0]
SSDT spgh.sys ZwQueryKey [0xF72BB108]
SSDT spgh.sys ZwQueryValueKey [0xF72BAF88]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwSetValueKey [0xEC31DFDA]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwTerminateProcess [0xEC31EC76]
SSDT \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys ZwWriteFile [0xEC31E8FC]

INT 0x62 ? 84B6EBF8
INT 0x63 ? 84A1BBF8
INT 0x73 ? 84A1BBF8
INT 0x73 ? 84A1BBF8
INT 0x83 ? 84B6EBF8
INT 0xA4 ? 84A1BBF8
INT 0xB4 ? 84A1BBF8
INT 0xB4 ? 84A1BBF8

---- Devices - GMER 1.0.15 ----

Device \FileSystem\Ntfs \Ntfs 84B6D1F8
Device \Driver\Tcpip \Device\Ip avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)

Device \Driver\NetBT \Device\NetBT_Tcpip_{E94E6972-9348-4E41-8419-D2E5D99D24A3} 841CF1F8
Device \Driver\usbohci \Device\USBPDO-0 8497A1F8
Device \Driver\usbohci \Device\USBPDO-1 8497A1F8
Device \Driver\usbohci \Device\USBPDO-2 8497A1F8
Device \Driver\usbohci \Device\USBPDO-3 8497A1F8
Device \Driver\usbehci \Device\USBPDO-4 849931F8
Device \Driver\Tcpip \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
Device \Driver\usbohci \Device\USBPDO-5 8497A1F8
Device \Driver\Ftdisk \Device\HarddiskVolume1 84BDD1F8
Device \Driver\Ftdisk \Device\HarddiskVolume2 84BDD1F8
Device \Driver\Cdrom \Device\CdRom0 849A61F8
Device \Driver\Cdrom \Device\CdRom1 849A61F8
Device \Driver\NetBT \Device\NetBT_Tcpip_{C325729C-B27F-47D0-AAB4-E893AB033AE0} 841CF1F8
Device \Driver\NetBT \Device\NetBt_Wins_Export 841CF1F8
Device \Driver\PCI_PNP1174 \Device\0000004b spgh.sys
Device \Driver\NetBT \Device\NetbiosSmb 841CF1F8
Device \Driver\sptd \Device\3601883674 spgh.sys
Device \Driver\Tcpip \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
Device \Driver\Tcpip \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)


LOG. TB


-----------\\ ToolBar S&D 1.2.8 XP/Vista

Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Celeron(R) M CPU 520 @ 1.60GHz )
BIOS : Default System BIOS
USER : Asus ( Administrator )
BOOT : Normal boot
Antivirus : AVG 8.0 (Activated)
C:\ (Local Disk) - NTFS - Total:39 Go (Free:5 Go)
D:\ (Local Disk) - NTFS - Total:72 Go (Free:48 Go)
E:\ (USB)
F:\ (CD or DVD)
H:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( źt 20.08.2009|11:46 )

-----------\\ FIX

Deleted! - [Service] ASKUpgrade
Deleted! - C:\Program Files\AskBarDis\bar
Deleted! - C:\Program Files\AskBarDis\unins000.dat
Deleted! - C:\Program Files\AskBarDis\unins000.exe
Deleted! - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
Deleted! - C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT
Deleted! - C:\Program Files\DAEMON Tools Toolbar\Resources
Deleted! - C:\Program Files\DAEMON Tools Toolbar\uninst.exe
Deleted! - C:\Program Files\DAEMON Tools Toolbar\_DTLite.xml
Deleted! - C:\Program Files\AskBarDis
Deleted! - C:\Program Files\DAEMON Tools Toolbar

-----------\\ Searching for Files - Folders ...


-----------\\ Extensions

(Asus) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar
(Asus) - {DDC359D1-844A-42a7-9AA1-88A850A938A8} => chrome
(Asus) - {E9A1DEE0-C623-4439-8932-001E7D17607D} => ajtoolbar
(Asus) - {EEE6C361-6118-11DC-9C72-001320C79847} => sweetim-toolbar


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://www.ask.com/?o=13928&l=dis"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"ICQ Search"="http://www.icq.com/search/results.php?q={searchTerms}&ch_id=osd"
"Url"="http://go.microsoft.com/fwlink/?LinkId=68928"
"Url"="http://go.microsoft.com/fwlink/?LinkId=68929"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://www.msn.com/"


--------------------\\ Searching for other infections


No other infections found !


1 - "C:\ToolBar SD\TB_1.txt" - źt 20.08.2009|11:49 - Option : [2]

-----------\\ Scan completed at 11:49:14,54

[pitimir]

Stiahni MWAV. Spust ho a riad sa instrukciami. Aktualizuj ho a nastav parametre.

Po scane skopiruj log zo spodneho okna.

[Michal.S]

Tak po 3 hodine vyjelo tohle ...

Invalid Entry DllName = appmgmts.dll (in key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\GPExtensions\{c6dc5466-785a-11d2-84d0-00c04fb169f7}). Action Taken: Deleting Registry Key {c6dc5466-785a-11d2-84d0-00c04fb169f7}.
Objekt "NULLBYTE Spyware/Adware" nalezen v souborovém systému! Provedené akce: Ponecháno, neodstraněno!.
Objekt "grokster Spyware/Adware" nalezen v souborovém systému! Provedené akce: Ponecháno, neodstraněno!.
Objekt "AntiVirusAndTrojan Corrupted Adware/Spyware" nalezen v souborovém systému! Provedené akce: Ponecháno, neodstraněno!.
Objekt "Backdoor (IRCBot) Trojans Spyware/Adware" nalezen v souborovém systému! Provedené akce: Ponecháno, neodstraněno!.
Objekt "Backdoor (IRCBot) Trojans Spyware/Adware" nalezen v souborovém systému! Provedené akce: Ponecháno, neodstraněno!.
Objekt "RegSort Corrupted Adware/Spyware" nalezen v souborovém systému! Provedené akce: Ponecháno, neodstraněno!.
Objekt "Spyware.PCAgent Commercial KeyLogger" nalezen v souborovém systému! Provedené akce: Ponecháno, neodstraněno!.
Objekt "Spyware.ExpressKeylog Corrupted Adware/Spyware" nalezen v souborovém systému! Provedené akce: Ponecháno, neodstraněno!.
Objekt "AntiSpyware Pro XP Corrupted Adware/Spyware" nalezen v souborovém systému! Provedené akce: Ponecháno, neodstraněno!.
Objekt "Spyware.KeyProwler Corrupted Adware/Spyware" nalezen v souborovém systému! Provedené akce: Ponecháno, neodstraněno!.
Záznam "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts" odkazuje na neplatný objekt ".dm_1". Provedené akce: Ponecháno, neodstraněno!.
Záznam "HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache" odkazuje na neplatný objekt "DAEMON Tools Toolbar". Provedené akce: Ponecháno, neodstraněno!.
** Scanning may fail! File Locked [SUSPICIOUS]: C:\windows\system32\HOOK.DLL (????)
Soubor C:\Documents and Settings\Asus\Data aplikací\mIRC\logs\messages.QuakeNet.log je infikovaný virem Trojan.Small.NDV (DB) !! Provedené akce: Ponecháno, neodstraněno!.
Soubor C:\Program Files\mIRC\logs\exoor.QuakeNet.log je infikovaný virem Trojan.Small.NDV (DB) !! Provedené akce: Ponecháno, neodstraněno!.
Soubor C:\Program Files\mIRC\logs\IE`STiNKZ.QuakeNet.log je infikovaný virem Trojan.Small.NDV (DB) !! Provedené akce: Ponecháno, neodstraněno!.
Soubor C:\Program Files\mIRC\logs\pevec.QuakeNet.log je infikovaný virem Trojan.Small.NDV (DB) !! Provedené akce: Ponecháno, neodstraněno!.
Soubor C:\Program Files\mIRC\logs\pOlyeXs_susta.QuakeNet.log je infikovaný virem Trojan.Small.NDV (DB) !! Provedené akce: Ponecháno, neodstraněno!.
** Scanning may fail! File Locked [SUSPICIOUS]: C:\WINDOWS\system32\HOOK.DLL (????)

[pitimir]

Zaujimave...
Otestuj subor(y) na VIRUSTOTALe:

Kód: Vybrat vše

C:\windows\system32\HOOK.DLL
C:\Program Files\mIRC\logs\exoor.QuakeNet.log
C:\Program Files\mIRC\logs\IE`STiNKZ.QuakeNet.log
C:\Program Files\mIRC\logs\pevec.QuakeNet.log je
C:\Program Files\mIRC\logs\pOlyeXs_susta.QuakeNet.log

Ak vypise, ze subor uz bol testovany, daj ho otestovat znovu. Vysledok posli ako LINK.

[Michal.S]

Tak doufam ze jsem to vsechno otestoval a zprávně..


http://www.virustotal.com/cs/reanalisis ... 1250797397

http://www.virustotal.com/cs/analisis/a ... 1250798044

http://www.virustotal.com/cs/analisis/5 ... 1250798267

http://www.virustotal.com/cs/analisis/4 ... 1250798494